Windows Firewall Ports on Exchange 2007 CAS/HUB/MAILBOX Server

I recently turned on Windows Firewall on a Windows Server 2003 SP2 that has Exchange 2007 SP1 CAS/HUB/MAILBOX roles configured and email stopped coming in. I was wondering what ports I need to open to allow internal users to connect using Outlook 2003 and 2007. I tried to open port 25 & 443 but it still didn't work.
LVL 1
katredrumAsked:
Who is Participating?
 
ProbityConnect With a Mentor Commented:
25 - smtp
110 - pop3
143 - imap4
80 - http
443 - https

Those are necessary... however, if you have local users connecting to the box, they will be using MAPI which uses many ports (random) to connect to the server -- unless you're having your users use RPC over HTTPS in-house or POP/IMAP - you will need to disable to firewall.
0
 
DenverRickCommented:
It will depend on where the Domain info is coming from, is this box a DC?
0
 
katredrumAuthor Commented:
No, it is only a member server.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
katredrumAuthor Commented:
Probity, thank you for your response. I do have users connecting via Outlook from inside the network so I will need to disable the firewall. Is it common practice to disable Windows Firewall on servers in general?
I had all my servers configured this way (without firewall on) but with some users on the network being infected with spyware, adware, and virus' I wanted to try and prevent the server from being infected on ports that doesn't have to be open.
0
 
katredrumAuthor Commented:
Did a little more researching and found that no one really put the Windows Firewall on Exchange Server if they have a corporate firewall. I think it is kind of stupid that Microsoft isn't able to program their software to be protected using their own firewall.
0
 
Nelesh_NCommented:
Sorry just to pick up on this. I'm having issues with dsl users coming into the network. If the maibox resides on the one cluster it works fine, if connecting to the other cluster it drops on ports 2141 and 2112. Are these the dynamic ports that exchange use to connect to Outlook?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.